Техническая информация
- '%TEMP%\oykgk.exe'
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\3009uk5[1].pdf
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEWNTWLX\3009uk5[1].pdf
- %TEMP%\oykgk.exe
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\23BUYPX5\3009uk5[1].pdf
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\3009uk5[1].pdf
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\23BUYPX5\3009uk5[1].pdf
- 'is####sangeles.com':80
- 'gr###fotos.com':80
- '18#.#65.198.52':41907
- is####sangeles.com/wp-content/uploads/2014/08/3009uk5.pdf
- gr###fotos.com/handler/3009uk5.pdf
- DNS ASK is####sangeles.com
- DNS ASK gr###fotos.com
- DNS ASK dn#.##ftncsi.com